{"id":347,"date":"2010-03-14T18:35:44","date_gmt":"2010-03-14T10:35:44","guid":{"rendered":"http:\/\/www.yaoge123.com\/blog\/?p=347"},"modified":"2010-03-14T18:35:44","modified_gmt":"2010-03-14T10:35:44","slug":"%e9%85%8d%e7%bd%aeproftpd%e5%8a%a0%e5%af%86ssl","status":"publish","type":"post","link":"https:\/\/www.yaoge123.com\/blog\/archives\/347","title":{"rendered":"\u914d\u7f6eProFTPD\u52a0\u5bc6SSL"},"content":{"rendered":"<p>\u4e0b\u8f7d\u811a\u672c http:\/\/www.castaglia.org\/openssl\/contrib\/cert-tool \uff0c\u4fee\u6539cert-tool\u4e2dopenssl\u7684\u8def\u5f84\uff0c\u7528\u8fd9\u4e2a\u811a\u672c\u8c03\u7528OpenSSL\u81ea\u7b7e\u540d\u9881\u53d1\u4e00\u4e2a\u8bc1\u4e66<br \/>\n<code>cert-tool --create-ca=serverca --signing-ca=self<br \/>\ncert-tool --create-cert=server --signing-ca=serverca.cert.pem --signing-key=serverca.key.pem<\/code><br \/>\n\u4fee\u6539proftpd.conf\uff0c\u589e\u52a0TLS\u914d\u7f6e<br \/>\n<code><ifmodule mod_tls.c><br \/>\n  TLSEngine on  #\u5f00\u542fTLS<br \/>\n  TLSLog \/var\/log\/proftpd-tls.log  #TLS\u65e5\u5fd7<br \/>\n  TLSProtocol SSLv23  #\u5141\u8bb8\u4f7f\u7528SSLv3\u548cTLSv1<br \/>\n  TLSRSACertificateFile \/usr\/local\/etc\/server.cert.pem  #cert-tool\u751f\u6210\u7684\u8bc1\u4e66<br \/>\n  TLSRSACertificateKeyFile \/usr\/local\/etc\/server.key.pem  #cert-tool\u751f\u6210\u7684key<br \/>\n  TLSCACertificateFile \/usr\/local\/etc\/serverca.cert.pem  #cert-tool\u751f\u6210\u7684CA\u8bc1\u4e66<br \/>\n  TLSVerifyClient off  #\u4e0d\u9a8c\u8bc1\u5ba2\u6237\u7aef\u8bc1\u4e66\u3002\u5982\u8981\u542f\u7528\u5ba2\u6237\u7aef\u8bc1\u4e66\u9a8c\u8bc1\uff0c\u5219\u9700\u8981\u7528TLSCACertificateFile\u8fd9\u4e2aCA\u6765\u9881\u53d1\u5ba2\u6237\u7aef\u8bc1\u4e66<br \/>\n  TLSRenegotiate required off  #\u4e0d\u5f3a\u5236\u8981\u6c42\u91cd\u534f\u5546<br \/>\n<\/ifmodule><\/code><br \/>\n\u53e6\u5916\u52a0\u5bc6\u4f20\u8f93\u9700\u8981\u4f7f\u7528FTP\u547d\u4ee4PROT\uff0c\u5982\u679cDeny ALL\u8fc7\uff0c\u9700\u8981Allow<br \/>\n<code><directory \/>\n   <limit ALL>\n     DenyAll\n   <\/limit>\n   <limit PROT>\n     AllowAll\n   <\/limit>\n<\/code><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u4e0b\u8f7d\u811a\u672c http:\/\/www.castaglia.org\/openssl\/contrib\/cert-tool [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[15],"tags":[49,57],"class_list":["post-347","post","type-post","status-publish","format-standard","hentry","category-freebsd","tag-proftpd","tag-ssl"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paOwEq-5B","_links":{"self":[{"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/posts\/347","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/comments?post=347"}],"version-history":[{"count":0,"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/posts\/347\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/media?parent=347"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/categories?post=347"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.yaoge123.com\/blog\/wp-json\/wp\/v2\/tags?post=347"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}